← Back to Topics

NIST FIPS Crypto Standards

The cluster discusses NIST and FIPS 140 standards for cryptographic modules, debates their trustworthiness due to perceived NSA influence, and their role in government compliance and procurement.

➡️ Stable 0.6x Security
1,506
Comments
18
Years Active
5
Top Authors
#125
Topic ID

Activity Over Time

2008
1
2010
11
2011
11
2012
21
2013
77
2014
78
2015
36
2016
87
2017
83
2018
56
2019
81
2020
116
2021
133
2022
183
2023
181
2024
150
2025
173
2026
32

Top Contributors

tptacek (82) Spooky23 (29) Veserv (14) nickpsecurity (13) er4hn (11)

Keywords

twimg.com SHA3 US PBKDF2 MLS HHS DARPA opengroup.org USG SPARK nist 140 nsa security approved audit compliance government certified standards

Sample Comments

defrost Oct 26, 2023 View on HN

Yes.NIST- https://news.ycombinator.com/item?id=38016900

loeg Dec 9, 2019 View on HN

NIST doesn't like non-NIST ciphers.

cjhanks Mar 18, 2017 View on HN

Why does this standard not fall under the purview of N.I.S.T.?

tedks Oct 24, 2014 View on HN

Who cares if it's NIST-approved? The NSA owns NIST entirely; if something is NIST approved it's probably a good reason to not use it.

jeffbee Aug 10, 2020 View on HN

I see you don't have FIPS 140-2 certification.

zymhan Sep 28, 2017 View on HN

This information is well over a year oldhttps://www.schneier.com/blog/archives/2016/08/nist_is_no_lo...

commandersaki Oct 5, 2025 View on HN

Ah FIPS, the bastion of security standards.

gnabgib Dec 20, 2021 View on HN

Perhaps you could link to these NIST standards?

firesteelrain Jan 23, 2026 View on HN

That is backwards. NIST FIPS, especially FIPS 140, are explicitly security standards for cryptographic modules. They exist to define and validate security requirements and to give agencies a security metric for procurement. Security is central to the standard even if buyers also use it for compliance and contracting.

john_alan Dec 31, 2021 View on HN

It’s funny that you’re a proponent of NIST/FIPS approved crypto but also worry about NSA backdoors.